x-kom hosting

Prosze o sprawdzenie loga

gregus88
utworzono
utworzono (edytowane)

Ostatnio moj komputer pracuje bardzo wolno. Prosilbym o sprawdzenie loga

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 01:04:33, on 2009-07-20Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18248)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\system32\taskeng.exeC:\Windows\Explorer.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Windows Defender\MSASCui.exeC:\Program Files\HP\HP Software Update\hpwuSchd2.exeC:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exeC:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exeC:\Program Files\Java\jre1.6.0_02\bin\jusched.exeC:\WINDOWS\System32\rundll32.exeC:\Program Files\HP\QuickPlay\QPService.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Program Files\Alwil Software\Avast4\ashDisp.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exeC:\Program Files\DAEMON Tools Lite\daemon.exeC:\WINDOWS\ehome\ehtray.exeC:\Windows\ehome\ehmsas.exeC:\Program Files\Hewlett-Packard\Shared\HpqToaster.exeC:\Program Files\Synaptics\SynTP\SynTPHelper.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Windows\system32\wuauclt.exeC:\Program Files\Gadu-Gadu\gg.exeC:\Program Files\Winamp\winamp.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\Windows\system32\SearchFilterHost.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://amkbpk.110mb.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Ahsan Manan Khan Bhutta * Internet Explorer *R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dllO3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exeO4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exeO4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exeO4 - HKLM\..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exeO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exeO4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hiddenO4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /trayO4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorunO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dllO9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dllO9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLLO13 - Gopher Prefix: O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dllO23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exeO23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exeO23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exeO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exeO23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exeO23 - Service: SoftGuard Service (SG_Service) - Unknown owner - C:\Program Files\Common Files\RbtProt\sgsrv.exeO23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe--End of file - 8116 bytes

gregus88
komentarz
komentarz

otltxt

OTL logfile created on: 2009-07-20 01:44:32 - Run 1OTL by OldTimer - Version 3.0.9.2	 Folder = C:\My DownloadsWindows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstationInternet Explorer (Version = 7.0.6001.18000)Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd2,00 Gb Total Physical Memory | 1,73 Gb Available Physical Memory | 86,75% Memory free4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File freePaging file location(s): ?:\pagefile.sys [binary data]%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program FilesDrive C: | 174,56 Gb Total Space | 56,12 Gb Free Space | 32,15% Space Free | Partition Type: NTFSDrive D: | 11,75 Gb Total Space | 1,99 Gb Free Space | 16,91% Space Free | Partition Type: NTFSE: Drive not present or media not loadedF: Drive not present or media not loadedG: Drive not present or media not loadedH: Drive not present or media not loadedI: Drive not present or media not loadedComputer Name: GREG-PCCurrent User Name: gregLogged in as Administrator.Current Boot Mode: NormalScan Mode: All usersCompany Name Whitelist: OffSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard========== Processes (SafeList) ==========PRC - [2008-12-04 03:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exePRC - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exePRC - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exePRC - [2007-08-23 17:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exePRC - [2007-12-19 20:28:34 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exePRC - [2004-09-21 14:32:42 | 00,155,648 | ---- | M] () -- C:\Program Files\Common Files\RbtProt\sgsrv.exePRC - [2007-07-10 16:28:08 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exePRC - [2006-05-03 00:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exePRC - [2008-10-29 08:29:41 | 02,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\Explorer.EXEPRC - [2007-12-19 20:28:34 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exePRC - [2008-01-18 13:31:22 | 01,033,512 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exePRC - [2008-01-21 04:23:32 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exePRC - [2007-05-09 01:24:20 | 00,054,840 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exePRC - [2007-09-13 17:47:52 | 00,480,560 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exePRC - [2007-01-09 00:53:06 | 00,311,296 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exePRC - [2009-03-03 04:16:04 | 00,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiprvse.exePRC - [2007-07-12 13:00:36 | 00,132,496 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre1.6.0_02\bin\jusched.exePRC - [2007-12-19 20:27:50 | 00,468,264 | ---- | M] (CyberLink Corp.) -- C:\Program Files\HP\QuickPlay\QPService.exePRC - [2007-08-24 07:00:48 | 00,033,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exePRC - [2009-02-05 22:08:45 | 00,081,000 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashDisp.exePRC - [2008-01-21 04:23:29 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exePRC - [2007-08-23 17:36:30 | 00,455,968 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exePRC - [2008-08-08 14:11:12 | 00,490,952 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\daemon.exePRC - [2008-01-21 04:25:11 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\ehome\ehtray.exePRC - [2008-01-21 04:25:11 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exePRC - [2007-05-16 19:43:06 | 00,677,432 | R--- | M] () -- C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exePRC - [2008-01-18 13:31:32 | 00,095,528 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exePRC - [2007-09-20 02:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exePRC - [2009-07-12 01:57:59 | 00,908,280 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exePRC - [2008-03-20 12:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exePRC - [2008-08-04 01:04:00 | 01,345,376 | ---- | M] (Nullsoft) -- C:\Program Files\Winamp\winamp.exePRC - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exePRC - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exePRC - [2009-07-20 01:43:10 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\My Downloads\OTL.exe========== Win32 Services (SafeList) ==========SRV - [2009-02-05 22:01:25 | 00,018,752 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv [Auto | Running])SRV - [2008-09-13 13:14:03 | 00,085,096 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service [On_Demand | Stopped])SRV - [2009-02-05 22:08:40 | 00,138,680 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus [Auto | Running])SRV - [2009-02-05 22:08:26 | 00,254,040 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner [On_Demand | Running])SRV - [2009-02-05 22:06:04 | 00,352,920 | ---- | M] (ALWIL Software) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner [On_Demand | Running])SRV - [2008-01-21 04:24:55 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32 [On_Demand | Stopped])SRV - [2008-01-21 04:25:09 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehRecvr.exe -- (ehRecvr [On_Demand | Stopped])SRV - [2006-11-02 14:35:29 | 00,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehsched.exe -- (ehSched [On_Demand | Stopped])SRV - [2006-11-02 14:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehstart.dll -- (ehstart [Auto | Stopped])SRV - [2008-01-21 04:23:49 | 01,013,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtsvc.dll -- (Eventlog [Auto | Running])SRV - [2008-01-21 04:25:20 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe -- (FontCache3.0.0.0 [On_Demand | Stopped])SRV - [2007-09-20 02:30:52 | 00,065,536 | ---- | M] (Hewlett-Packard) -- c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe -- (HP Health Check Service [Auto | Running])SRV - [2006-05-03 00:41:28 | 00,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex [Auto | Running])SRV - [2005-04-04 00:41:10 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT [On_Demand | Stopped])SRV - [2008-01-21 04:25:20 | 00,864,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc [unknown | Stopped])SRV - [2007-08-23 17:40:48 | 00,079,136 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService [Auto | Running])SRV - [2007-08-24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service [On_Demand | Stopped])SRV - [2008-01-21 04:25:21 | 00,122,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing [Disabled | Stopped])SRV - [2008-12-04 03:42:00 | 00,203,296 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe -- (nvsvc [Auto | Running])SRV - [2007-08-24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv [On_Demand | Stopped])SRV - [2006-10-26 23:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose [On_Demand | Stopped])SRV - [2007-12-19 20:28:34 | 00,271,760 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe -- (QPCapSvc [Auto | Running])SRV - [2007-12-19 20:28:34 | 00,112,016 | ---- | M] () -- C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe -- (QPSched [Auto | Running])SRV - [2004-09-21 14:32:42 | 00,155,648 | ---- | M] () -- C:\Program Files\Common Files\RbtProt\sgsrv.exe -- (SG_Service [Auto | Running])SRV - [2008-01-21 04:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend [Auto | Running])SRV - [2008-01-21 04:25:33 | 00,896,512 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])SRV - [2007-07-10 16:28:08 | 00,386,560 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.exe -- (XAudioService [Auto | Running])========== Driver Services (SafeList) ==========DRV - [2008-01-21 04:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx [Disabled | Stopped])DRV - [2008-01-21 04:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci [Disabled | Stopped])DRV - [2008-01-21 04:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m [Disabled | Stopped])DRV - [2008-01-21 04:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320 [Disabled | Stopped])DRV - [2006-11-02 11:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx [Disabled | Stopped])DRV - [2008-01-21 04:23:00 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\drivers\aliide.sys -- (aliide [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arc.sys -- (arc [Disabled | Stopped])DRV - [2008-01-21 04:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas [Disabled | Stopped])DRV - [2009-02-05 22:07:12 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswFsBlk.sys -- (aswFsBlk [Auto | Running])DRV - [2009-02-05 22:06:59 | 00,051,792 | ---- | M] (ALWIL Software) -- C:\Windows\System32\DRIVERS\aswMonFlt.sys -- (aswMonFlt [Auto | Running])DRV - [2009-02-05 22:06:10 | 00,023,152 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr [system | Running])DRV - [2009-02-05 22:07:23 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP [system | Running])DRV - [2009-02-05 22:06:20 | 00,051,376 | ---- | M] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi [system | Running])DRV - [2008-01-22 12:24:22 | 00,761,856 | ---- | M] (Atheros Communications, Inc.) -- C:\Windows\System32\DRIVERS\athr.sys -- (athr [On_Demand | Running])DRV - [2009-02-12 00:46:53 | 00,278,728 | ---- | M] () -- C:\Windows\System32\DRIVERS\atksgt.sys -- (atksgt [Auto | Running])DRV - [2006-11-02 09:30:53 | 00,464,384 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\DRIVERS\bcmwl6.sys -- (BCM43XV [On_Demand | Stopped])DRV - [2006-11-02 10:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo [On_Demand | Stopped])DRV - [2006-11-02 10:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp [On_Demand | Stopped])DRV - [2006-11-02 10:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserid.sys -- (Brserid [Disabled | Stopped])DRV - [2006-11-02 10:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm [Disabled | Stopped])DRV - [2006-11-02 10:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm [Disabled | Stopped])DRV - [2006-11-02 10:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer [On_Demand | Stopped])DRV - [2008-01-21 04:23:00 | 00,019,000 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide [Disabled | Stopped])DRV - [2008-03-04 02:32:00 | 00,188,416 | ---- | M] (Conexant Systems Inc.) -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService [On_Demand | Running])DRV - [2008-01-21 04:23:24 | 00,118,784 | ---- | M] (Intel Corporation) -- C:\Windows\System32\DRIVERS\E1G60I32.sys -- (E1G60 [On_Demand | Stopped])DRV - [2008-01-21 04:23:22 | 00,342,584 | ---- | M] (Emulex) -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor [Disabled | Stopped])DRV - [2008-01-21 04:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs [Disabled | Stopped])DRV - [2007-06-19 02:12:04 | 00,016,768 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqKbFiltr.sys -- (HpqKbFiltr [On_Demand | Stopped])DRV - [2007-07-11 19:30:22 | 00,007,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\DRIVERS\HpqRemHid.sys -- (HpqRemHid [On_Demand | Running])DRV - [2008-01-21 04:23:22 | 00,200,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\VSTAZL3.SYS -- (HSFHWAZL [On_Demand | Stopped])DRV - [2007-06-20 13:29:56 | 00,984,064 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_DPV.sys -- (HSF_DPV [On_Demand | Running])DRV - [2007-06-20 13:28:34 | 00,208,896 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSXHWAZL.sys -- (HSXHWAZL [On_Demand | Running])DRV - [2008-01-21 04:23:23 | 00,235,064 | ---- | M] (Intel Corporation) -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV [Disabled | Stopped])DRV - [2006-11-02 11:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp [Disabled | Stopped])DRV - [2006-11-02 11:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi [Disabled | Stopped])DRV - [2006-11-02 11:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid [Disabled | Stopped])DRV - [2009-02-12 00:46:51 | 00,025,416 | ---- | M] () -- C:\Windows\System32\DRIVERS\lirsgt.sys -- (lirsgt [Auto | Running])DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC [Disabled | Stopped])DRV - [2008-01-21 04:23:25 | 00,089,656 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,096,312 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI [Disabled | Stopped])DRV - [2006-06-19 01:26:58 | 00,012,672 | ---- | M] (Conexant) -- C:\Windows\System32\DRIVERS\mdmxsdk.sys -- (mdmxsdk [Auto | Running])DRV - [2008-01-21 04:23:27 | 00,031,288 | ---- | M] (LSI Corporation) -- C:\Windows\system32\drivers\megasas.sys -- (megasas [Disabled | Stopped])DRV - [2008-01-21 04:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\drivers\megasr.sys -- (MegaSR [Disabled | Stopped])DRV - [2006-11-02 11:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x [Disabled | Stopped])DRV - [2006-11-02 11:50:19 | 00,045,160 | ---- | M] (IBM Corporation) -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960 [Disabled | Stopped])DRV - [2006-11-02 09:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi [Disabled | Stopped])DRV - [2007-03-07 04:15:58 | 01,059,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvmfdx32.sys -- (NVENETFD [On_Demand | Running])DRV - [2008-12-04 03:42:00 | 07,606,688 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvlddmkm.sys -- (nvlddmkm [On_Demand | Running])DRV - [2008-01-21 04:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid [Disabled | Stopped])DRV - [2007-02-16 23:50:32 | 00,012,032 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\DRIVERS\nvsmu.sys -- (nvsmu [On_Demand | Running])DRV - [2008-01-21 04:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor [Disabled | Stopped])DRV - [2004-08-09 13:29:28 | 00,053,920 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\prodrv06.sys -- (prodrv06 [system | Running])DRV - [2004-08-09 13:33:26 | 00,114,016 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\prohlp02.sys -- (prohlp02 [boot | Running])DRV - [2004-07-19 16:49:54 | 00,007,040 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\prosync1.sys -- (prosync1 [boot | Running])DRV - [2008-01-21 04:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300 [Disabled | Stopped])DRV - [2006-11-02 11:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx [Disabled | Stopped])DRV - [2007-02-24 23:42:22 | 00,039,936 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimmptsk.sys -- (rimmptsk [Auto | Running])DRV - [2007-01-24 01:40:20 | 00,042,496 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rimsptsk.sys -- (rimsptsk [Auto | Running])DRV - [2007-03-22 07:02:04 | 00,037,376 | ---- | M] (REDC) -- C:\Windows\System32\DRIVERS\rixdptsk.sys -- (rismxdp [Auto | Running])DRV - [2006-11-02 08:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv [Auto | Running])DRV - [2003-12-01 17:20:52 | 00,004,832 | ---- | M] (Protection Technology) -- C:\Windows\System32\drivers\sfhlp01.sys -- (sfhlp01 [boot | Running])DRV - [2008-01-21 04:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4 [Disabled | Stopped])DRV - [2008-09-06 15:15:49 | 00,717,296 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd [boot | Running])DRV - [2006-11-02 11:50:05 | 00,035,944 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx [Disabled | Stopped])DRV - [2006-11-02 11:49:56 | 00,031,848 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi [Disabled | Stopped])DRV - [2006-11-02 11:50:03 | 00,034,920 | ---- | M] (LSI Logic) -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3 [Disabled | Stopped])DRV - [2008-01-18 13:31:26 | 00,196,784 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\DRIVERS\SynTP.sys -- (SynTP [On_Demand | Running])DRV - [2008-09-09 22:06:10 | 00,023,600 | ---- | M] (EnTech Taiwan) -- C:\Windows\System32\DRIVERS\TVICHW32.SYS -- (TVICHW32 [On_Demand | Stopped])DRV - [2008-01-21 04:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci [Disabled | Stopped])DRV - [2006-11-02 11:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2 [Disabled | Stopped])DRV - [2006-01-13 15:00:52 | 00,015,872 | ---- | M] (Flint Incorporation) -- C:\Windows\System32\drivers\vd_filedisk.sys -- (VD_FileDisk [system | Running])DRV - [2008-01-21 04:23:00 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\drivers\viaide.sys -- (viaide [Disabled | Stopped])DRV - [2008-01-21 04:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid [Disabled | Stopped])DRV - [2007-06-20 13:28:22 | 00,660,480 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\HSX_CNXT.sys -- (winachsf [On_Demand | Running])DRV - [2007-07-10 16:27:56 | 00,008,704 | ---- | M] (Conexant Systems, Inc.) -- C:\Windows\System32\DRIVERS\xaudio.sys -- (XAudio [Auto | Running])DRV - [2007-12-19 20:27:34 | 00,041,456 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\HP\QuickPlay\000.fcl -- ({22D78859-9CE9-4B77-BF18-AC83E81A9263} [Auto | Running])========== Standard Registry (SafeList) ==================== Internet Explorer ==========IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =  [binary data]IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-onsIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htmIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRiskIE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopIE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0IE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopIE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\system32\blank.htmIE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896IE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://amkbpk.110mb.com/IE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1IE - HKU\S-1-5-21-1676036130-1708364844-763605764-1000\S-1-5-21-1676036130-1708364844-763605764-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0========== FireFox ==========FF - prefs.js..browser.search.useDBForOrder: trueFF - prefs.js..browser.startup.homepage: "www.onet.pl"FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.0.2FF - prefs.js..extensions.enabledItems: {c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}:1.6FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.1.9.8FF - prefs.js..extensions.enabledItems: {ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}:1.2FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5FF - HKLM\software\mozilla\Mozilla Firefox 3.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009-07-12 01:58:10 | 00,000,000 | ---D | M]FF - HKLM\software\mozilla\Mozilla Firefox 3.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009-07-12 15:54:44 | 00,000,000 | ---D | M][2009-04-29 19:03:25 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Extensions[2009-04-29 19:03:25 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}[2009-07-19 20:57:03 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Firefox\Profiles\71tijwnc.default\extensions[2009-07-12 01:58:23 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Firefox\Profiles\71tijwnc.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}[2009-07-12 01:43:03 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Firefox\Profiles\71tijwnc.default\extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}[2009-07-12 01:33:17 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Firefox\Profiles\71tijwnc.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}[2009-07-12 02:06:05 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\mozilla\Firefox\Profiles\71tijwnc.default\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}[2009-05-29 19:46:47 | 00,000,963 | ---- | M] () -- C:\Users\greg\AppData\Roaming\Mozilla\FireFox\Profiles\71tijwnc.default\searchplugins\wyszukiwanie-filmw-wideo-w-youtube.xml[2009-07-12 02:00:31 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions[2009-07-12 01:58:10 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}[2009-03-18 12:16:00 | 00,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}[2009-07-12 01:57:58 | 00,023,544 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browserdirprovider.dll[2009-07-12 01:57:58 | 00,137,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\brwsrcmp.dll[2007-04-10 17:21:08 | 00,163,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\np-mswmp.dll[2009-07-12 01:58:00 | 00,065,016 | ---- | M] (mozilla.org) -- C:\Program Files\mozilla firefox\plugins\npnul32.dll[2006-10-27 05:12:16 | 00,016,192 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL[2007-05-10 22:52:34 | 00,095,864 | ---- | M] (Adobe Systems Inc.) -- C:\Program Files\mozilla firefox\plugins\nppdf32.dll[2008-09-10 21:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nppl3260.dll[2008-09-10 21:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\mozilla firefox\plugins\nprpjplug.dll[2009-07-12 01:58:04 | 00,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml[2009-07-12 01:58:04 | 00,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml[2009-07-12 01:58:04 | 00,002,371 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\google.xml[2009-07-12 01:58:04 | 00,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml[2009-07-12 01:58:04 | 00,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml[2009-07-12 01:58:04 | 00,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml[2009-07-12 01:58:04 | 00,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xmlO1 HOSTS File: (761 bytes) - C:\Windows\System32\drivers\etc\HostsO1 - Hosts: 127.0.0.1	   localhostO1 - Hosts: ::1			 localhostO2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (Sun Microsystems, Inc.)O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)O4 - HKLM..\Run: [HP Health Check Scheduler]  File not foundO4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe (Hewlett-Packard)O4 - HKLM..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe (Hewlett-Packard Development Company, L.P.)O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)O4 - HKLM..\Run: [QPService] C:\Program Files\HP\QuickPlay\QPService.exe (CyberLink Corp.)O4 - HKLM..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe (Sun Microsystems, Inc.)O4 - HKLM..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics, Inc.)O4 - HKLM..\Run: [uCam_Menu] C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)O4 - HKLM..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe (Hewlett-Packard Development Company, L.P.)O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files\Windows Sidebar\Sidebar.exe (Microsoft Corporation)O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.DLL (Microsoft Corporation)O4 - HKU\S-1-5-21-1676036130-1708364844-763605764-1000..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\daemon.exe (DT Soft Ltd)O4 - HKU\S-1-5-21-1676036130-1708364844-763605764-1000..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe (Microsoft Corporation)O4 - HKU\S-1-5-21-1676036130-1708364844-763605764-1000..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)O4 - HKU\S-1-5-21-1676036130-1708364844-763605764-1000..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company)O4 - HKU\S-1-5-21-1676036130-1708364844-763605764-1000..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 2O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableInstallerDetection = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableSecureUIAPaths = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableVirtualization = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ValidateAdminCodeSignatures = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: dontdisplaylastusername = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticecaption = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: legalnoticetext = O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: scforceoption = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: FilterAdministratorToken = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableUIADesktopToggle = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_TEXT = 1O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_BITMAP = 2O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_OEMTEXT = 7O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIB = 8O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_PALETTE = 9O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_UNICODETEXT = 13O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats: CF_DIBV5 = 17O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll (Sun Microsystems, Inc.)O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)O13 - gopher Prefix: missingO17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1 194.204.152.34O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)O18 - Protocol\Filter:  - text/xml - C:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)O31 - SafeBoot: AlternateShell - cmd.exeO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - File not found -  -- [ NTFS ]O32 - AutoRun File - File not found -  -- [ NTFS ]O32 - AutoRun File - [2008-04-25 04:23:11 | 00,000,074 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]O32 - AutoRun File - [2005-09-11 17:18:54 | 00,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]O33 - MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\Shell - "" = AutoRunO33 - MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not foundO33 - MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\Shell\explore\command - "" = H:\name\\\\\\less.exe -- File not foundO33 - MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\Shell\open\command - "" = H:\name\\\\\\less.exe -- File not foundO33 - MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\Shell - "" = AutoRunO33 - MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\Shell\AutoRun\command - "" = G:\start95.exe -- File not foundO33 - MountPoints2\G\Shell - "" = AutoRunO33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup.exe -- File not foundO33 - MountPoints2\G\Shell\directx\command - "" = G:\DirectX\dxsetup.exe -- File not foundO33 - MountPoints2\G\Shell\setup\command - "" = G:\setup.exe -- File not foundO34 - HKLM BootExecute: (autocheck) -  File not foundO34 - HKLM BootExecute: (autochk) - C:\Windows\System32\autochk.exe (Microsoft Corporation)O34 - HKLM BootExecute: (*) -  File not found========== Files/Folders - Created Within 30 Days ==========[2009-07-20 01:04:20 | 00,001,880 | ---- | C] () -- C:\Users\greg\Desktop\HijackThis.lnk[2009-07-18 18:08:56 | 00,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll[2009-07-18 18:08:56 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll[2009-07-18 18:08:56 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll[2009-07-18 18:08:56 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll[2009-07-16 00:08:10 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro[2009-07-12 19:58:06 | 00,000,000 | ---D | C] -- C:\piosenki kowal[2009-07-12 15:54:45 | 00,001,893 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 8.lnk[2009-07-12 15:54:32 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe[2009-07-12 15:54:32 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe[2009-07-12 15:40:05 | 01,714,843 | -H-- | C] () -- C:\Users\greg\AppData\Local\IconCache.db[2009-07-12 15:23:58 | 00,000,000 | ---D | C] -- C:\Windows\BricoPacks[2009-07-12 15:06:15 | 00,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search & Destroy[2009-07-12 15:06:15 | 00,000,000 | ---D | C] -- C:\Program Files\Spybot - Search & Destroy[2009-07-12 15:05:29 | 00,001,676 | ---- | C] () -- C:\Users\greg\Desktop\CCleaner.lnk[2009-07-12 15:05:28 | 00,000,000 | ---D | C] -- C:\Program Files\CCleaner[2009-07-12 01:46:01 | 00,023,152 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswRdr.sys[2009-07-12 01:46:01 | 00,001,855 | ---- | C] () -- C:\Users\Public\Desktop\Avast!.lnk[2009-07-12 01:46:00 | 00,051,376 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswTdi.sys[2009-07-12 01:45:58 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\Windows\System32\AvastSS.scr[2009-07-12 01:45:57 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswSP.sys[2009-07-12 01:45:57 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswFsBlk.sys[2009-07-12 01:45:34 | 01,256,296 | ---- | C] (ALWIL Software) -- C:\Windows\System32\aswBoot.exe[2009-07-12 01:45:34 | 00,380,928 | ---- | C] () -- C:\Windows\System32\actskin4.ocx[2009-07-12 01:45:34 | 00,051,792 | ---- | C] (ALWIL Software) -- C:\Windows\System32\drivers\aswMonFlt.sys[2009-07-12 01:45:32 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software[2009-07-11 21:36:06 | 00,000,000 | ---D | C] -- C:\pisoenki pendrive[2009-07-11 11:04:54 | 00,000,000 | ---D | C] -- C:\Users\greg\AppData\Roaming\Malwarebytes[2009-07-11 11:04:39 | 00,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes[2009-07-11 11:04:37 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware[2009-07-11 05:07:40 | 00,000,000 | ---D | C] -- C:\Users\greg\AppData\Local\ESET[2009-07-11 02:15:40 | 00,000,000 | ---D | C] -- C:\Program Files\ESET[2009-07-11 02:15:39 | 00,000,000 | ---D | C] -- C:\ProgramData\ESET[2009-07-10 23:54:48 | 00,000,000 | ---D | C] -- C:\Program Files\Odkurzacz[2009-07-10 02:10:31 | 00,000,000 | ---D | C] -- C:\Users\greg\AppData\Local\LemonScreen[2009-07-10 01:51:45 | 00,000,000 | ---D | C] -- C:\Users\greg\AppData\Local\KeyLemon[2009-07-10 01:51:45 | 00,000,000 | ---- | C] () -- C:\Windows\System32\fltrkl11.dll[2009-07-10 01:51:10 | 00,000,000 | ---D | C] -- C:\Program Files\KeyLemon[2009-07-05 12:27:27 | 00,011,515 | ---- | C] () -- C:\Users\greg\Desktop\silka.xlsx[2009-07-03 16:58:02 | 00,000,726 | ---- | C] () -- C:\Users\greg\Desktop\RM-WIN.lnk[2009-04-15 20:15:44 | 00,000,015 | ---- | C] () -- C:\Windows\Robot Office Common.ini[2009-04-15 15:09:07 | 00,000,141 | ---- | C] () -- C:\Windows\splendor.ini[2009-04-15 14:39:42 | 00,000,137 | ---- | C] () -- C:\Windows\Aslan.INI[2009-04-09 21:18:50 | 00,024,576 | ---- | C] () -- C:\Windows\System32\callrun.dll[2009-04-09 21:18:04 | 00,000,065 | ---- | C] () -- C:\Windows\DICWORD.INI[2009-04-09 21:18:04 | 00,000,012 | ---- | C] () -- C:\Windows\RUNTEST.INI[2009-03-07 23:27:44 | 00,339,968 | ---- | C] () -- C:\Windows\System32\pythoncom25.dll[2009-03-07 23:27:44 | 00,114,688 | ---- | C] () -- C:\Windows\System32\pywintypes25.dll[2009-02-12 00:46:53 | 00,278,728 | ---- | C] () -- C:\Windows\System32\drivers\atksgt.sys[2009-02-12 00:46:51 | 00,025,416 | ---- | C] () -- C:\Windows\System32\drivers\lirsgt.sys[2009-01-21 23:49:08 | 00,168,448 | ---- | C] () -- C:\Windows\System32\unrar.dll[2009-01-21 23:49:06 | 00,795,648 | ---- | C] () -- C:\Windows\System32\xvidcore.dll[2009-01-21 23:49:06 | 00,130,048 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll[2009-01-21 23:49:05 | 03,596,288 | ---- | C] () -- C:\Windows\System32\qt-dx331.dll[2009-01-21 23:49:04 | 00,057,344 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll[2009-01-21 23:49:04 | 00,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest[2008-12-29 04:52:20 | 00,000,025 | ---- | C] () -- C:\Windows\cdplayer.ini[2008-11-17 01:44:28 | 00,021,840 | ---- | C] () -- C:\Windows\System32\SIntfNT.dll[2008-11-17 01:44:27 | 00,017,212 | ---- | C] () -- C:\Windows\System32\SIntf32.dll[2008-11-17 01:44:27 | 00,012,067 | ---- | C] () -- C:\Windows\System32\SIntf16.dll[2008-09-06 15:15:49 | 00,717,296 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys[2008-07-16 04:36:15 | 00,016,480 | ---- | C] () -- C:\Windows\System32\rixdicon.dll[2006-11-02 14:35:32 | 00,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll[2006-11-02 12:23:31 | 00,000,219 | ---- | C] () -- C:\Windows\win.ini[2006-11-02 12:23:09 | 00,000,219 | ---- | C] () -- C:\Windows\system.ini[2006-11-02 09:40:29 | 00,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini[2006-03-09 11:58:00 | 01,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll========== Files - Modified Within 30 Days ==========[2009-07-20 01:04:20 | 00,001,880 | ---- | M] () -- C:\Users\greg\Desktop\HijackThis.lnk[2009-07-20 00:46:42 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0[2009-07-20 00:46:42 | 00,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0[2009-07-19 22:53:07 | 00,690,960 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI[2009-07-19 22:53:07 | 00,587,178 | ---- | M] () -- C:\Windows\System32\perfh009.dat[2009-07-19 22:53:07 | 00,101,250 | ---- | M] () -- C:\Windows\System32\perfc009.dat[2009-07-19 22:47:49 | 00,000,260 | ---- | M] () -- C:\Users\Public\Documents\hpqp.ini[2009-07-19 22:47:46 | 00,135,512 | ---- | M] () -- C:\Users\greg\AppData\Local\GDIPFONTCACHEV1.DAT[2009-07-19 22:47:45 | 00,041,952 | ---- | M] () -- C:\ProgramData\nvModes.001[2009-07-19 22:46:49 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT[2009-07-19 22:46:39 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat[2009-07-19 22:21:26 | 00,460,096 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT[2009-07-19 22:19:44 | 01,714,843 | -H-- | M] () -- C:\Users\greg\AppData\Local\IconCache.db[2009-07-12 19:59:58 | 00,011,515 | ---- | M] () -- C:\Users\greg\Desktop\silka.xlsx[2009-07-12 15:54:45 | 00,001,893 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 8.lnk[2009-07-12 15:05:29 | 00,001,676 | ---- | M] () -- C:\Users\greg\Desktop\CCleaner.lnk[2009-07-12 12:07:56 | 00,041,952 | ---- | M] () -- C:\ProgramData\nvModes.dat[2009-07-12 01:46:01 | 00,001,855 | ---- | M] () -- C:\Users\Public\Desktop\Avast!.lnk[2009-07-12 01:45:56 | 00,002,626 | ---- | M] () -- C:\Windows\System32\config.nt[2009-07-11 23:33:19 | 00,172,032 | ---- | M] () -- C:\Users\greg\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2009-07-11 19:19:16 | 00,007,620 | ---- | M] () -- C:\Users\greg\AppData\Local\d3d9caps.dat[2009-07-10 01:51:45 | 00,000,000 | ---- | M] () -- C:\Windows\System32\fltrkl11.dll[2009-07-03 16:58:02 | 00,000,726 | ---- | M] () -- C:\Users\greg\Desktop\RM-WIN.lnk========== LOP Check ==========[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\Media Center Programs[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\Media Center Programs[2009-07-12 02:13:31 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming[2008-09-15 17:25:43 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Autodesk[2009-07-12 00:06:53 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\CyberLink[2008-09-06 15:15:34 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\DAEMON Tools[2009-07-03 16:43:12 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Dev-Cpp[2008-09-06 19:29:08 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Gadu-Gadu[2008-11-26 21:31:44 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\HEXelon[2008-12-14 12:56:25 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\ipla[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Media Center Programs[2009-03-29 01:57:50 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Nowe Gadu-Gadu[2009-01-09 16:31:21 | 00,000,000 | RH-D | M] -- C:\Users\greg\AppData\Roaming\SecuROM[2009-01-23 03:05:04 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Template[2008-10-15 12:10:00 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\Tlen.pl[2009-06-20 18:09:25 | 00,000,000 | ---D | M] -- C:\Users\greg\AppData\Roaming\U3[2009-04-24 13:20:31 | 00,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming[2009-04-05 11:26:08 | 00,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\DAEMON Tools[2008-09-23 16:51:56 | 00,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Gadu-Gadu[2006-11-02 14:37:34 | 00,000,000 | ---D | M] -- C:\Users\Guest\AppData\Roaming\Media Center Programs[2009-07-19 22:46:49 | 00,000,006 | -H-- | M] () -- C:\Windows\Tasks\SA.DAT[2009-07-19 22:22:34 | 00,032,646 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT========== Purity Check ==========< End of report >

extras.txt

OTL Extras logfile created on: 2009-07-20 01:44:32 - Run 1OTL by OldTimer - Version 3.0.9.2	 Folder = C:\My DownloadsWindows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstationInternet Explorer (Version = 7.0.6001.18000)Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd2,00 Gb Total Physical Memory | 1,73 Gb Available Physical Memory | 86,75% Memory free4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File freePaging file location(s): ?:\pagefile.sys [binary data]%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program FilesDrive C: | 174,56 Gb Total Space | 56,12 Gb Free Space | 32,15% Space Free | Partition Type: NTFSDrive D: | 11,75 Gb Total Space | 1,99 Gb Free Space | 16,91% Space Free | Partition Type: NTFSE: Drive not present or media not loadedF: Drive not present or media not loadedG: Drive not present or media not loadedH: Drive not present or media not loadedI: Drive not present or media not loadedComputer Name: GREG-PCCurrent User Name: gregLogged in as Administrator.Current Boot Mode: NormalScan Mode: All usersCompany Name Whitelist: OffSkip Microsoft Files: OffFile Age = 30 DaysOutput = Standard========== Extra Registry (SafeList) ==================== File Associations ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>].cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation).hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation).html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)[HKEY_USERS\S-1-5-21-1676036130-1708364844-763605764-1000\SOFTWARE\Classes\<extension>].html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)========== Security Center Settings ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]"cval" = 1"UacDisableNotify" = 0"InternetSettingsDisableNotify" = 0"AutoUpdateDisableNotify" = 0[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]"DisableMonitoring" = 1[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]"DisableMonitoring" = 1[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]"DisableMonitoring" = 1[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]"AntiVirusOverride" = 0"AntiSpywareOverride" = 0"FirewallOverride" = 0"VistaSp1" = Reg Error: Unknown registry data type -- File not found[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]"EnableFirewall" = 1"DisableNotifications" = 0[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]"EnableFirewall" = 1"DisableNotifications" = 0[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]"EnableFirewall" = 1"DisableNotifications" = 0========== Authorized Applications List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]"C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" = C:\Program Files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink -- (EarthLink, Inc.)========== Vista Active Open Ports Exception List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]"{08B8AE9C-9854-4CA1-9915-198E2068CE03}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{34037AE5-4411-42BF-AE2F-187DCB3F2F7E}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe | "{51027D60-714F-485B-997A-F84339E6D428}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{51EBBF09-6B59-4F05-BEB8-2E9F1ADD8204}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{5554AC11-3470-4FBF-AE1E-442C510641AC}" = lport=138 | protocol=17 | dir=in | app=system | "{5D19A803-D56B-4AF1-A821-AFA28B501E39}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{675C414F-31DD-4830-89C4-94DCBE83F0AD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{6E96E573-D9A1-49A1-A11A-F7E43CBE32E8}" = lport=445 | protocol=6 | dir=in | app=system | "{784BE54B-6B4C-411C-B4D2-CC401F303FE0}" = lport=139 | protocol=6 | dir=in | app=system | "{7C87F80F-D142-4FCA-B03E-0C7D4EF6803B}" = rport=138 | protocol=17 | dir=out | app=system | "{7CF98BCF-ED8D-4049-85FD-43E9E777780F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{7E3A0645-220A-473E-A087-0A5E910DC935}" = rport=445 | protocol=6 | dir=out | app=system | "{9D165355-BA82-4F33-8580-AA9B9ECD4B00}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{A8B162AD-B424-40AD-98FD-B28FBDACB7F3}" = lport=137 | protocol=17 | dir=in | app=system | "{AD6A865C-3A27-4675-B9D4-F2D93FA32CDD}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{B53BCD5E-6485-435C-89B7-EB0665ED436B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{D16B7995-83FB-4698-A85B-6A4D8F183C81}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{DD7C898C-2453-4C5F-8921-7A7B2C1C4256}" = rport=139 | protocol=6 | dir=out | app=system | "{F11604DA-5C65-4A4F-B790-467B22D4E947}" = rport=137 | protocol=17 | dir=out | app=system | ========== Vista Active Application Exception List ==========[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]"{11C8DC70-3736-4C5E-AA43-D49EAA46E75F}" = protocol=17 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe | "{11CF649A-B94A-4777-BBC2-B29FB89F961F}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{301BF329-E570-45CA-AE4B-61ED24775AFC}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{41E1A3C0-DD8D-4E23-A3A6-B5A9C0F26EF6}" = protocol=6 | dir=in | app=c:\gry\dungeon siege 2\dungeonsiege2.exe | "{51C8DE2C-8CC7-4347-896F-09793B5F9733}" = dir=in | app=c:\program files\hp\quickplay\qp.exe | "{619E6676-45E9-4BC6-B27C-163082AFC02F}" = dir=in | app=c:\program files\hp\quickplay\qpservice.exe | "{6435A5D5-321F-405F-AB32-F4CDD8884A4F}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | "{68AAC4B8-78DE-4D70-8115-7B57E5AEA856}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe | "{71E69720-498E-4AC0-B143-D5C5E53EA1E4}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{7DAAA77D-D339-4C00-A7D1-42881E692799}" = protocol=6 | dir=in | app=c:\program files\common files\aol\loader\aolload.exe | "{7EB085B8-344E-41CB-9D92-AB651F064199}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{AF92B6E9-02ED-485F-8196-528D4296F852}" = protocol=6 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{B45744D4-86A4-4417-A215-719ED5DE9E9A}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{B6CE90A3-6D36-44D3-B443-A917754D02EB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{BA63A80B-523C-41E1-B265-A99B18142730}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{BAE004CE-B10F-4629-BED9-D1024B548917}" = protocol=17 | dir=in | app=c:\gry\dungeon siege 2\dungeonsiege2.exe | "{CE3813B0-00CD-4069-B601-436FCA092946}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe | "{CEB005FC-A593-403D-9E0F-B5D6D6CB7B01}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe | "{DDB121BA-E5CA-4CB9-9DB2-D2C2A374C3BE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{F5FD2F6C-4959-4877-8963-91D77D16EACE}" = protocol=17 | dir=in | app=c:\program files\earthlink totalaccess\taskpanl.exe | "{F6EBF73C-CF36-4F4A-90A7-86E537896595}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{F8EA8A1C-F712-4A8E-89F7-653D5DF48662}" = dir=in | app=c:\program files\skype\phone\skype.exe | "TCP Query User{024C2E13-0048-4054-9373-B62BBF2E8A1D}D:\gry\pro evolution soccer 6\pes6.exe" = protocol=6 | dir=in | app=d:\gry\pro evolution soccer 6\pes6.exe | "TCP Query User{055FF542-D5A8-44E2-8C76-D487F5829BF6}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | "TCP Query User{2C0D301C-EEDD-4DEC-A9A8-44BC54C011F6}C:\program files\bearshare\bearshare.exe" = protocol=6 | dir=in | app=c:\program files\bearshare\bearshare.exe | "TCP Query User{5591A9F1-F6C1-4F20-BD5D-5D5C71C21E7A}C:\program files\gadu-gadu\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu\gg.exe | "TCP Query User{704162A7-2220-48D1-B411-30E5959223B4}C:\windows\explorer.exe" = protocol=6 | dir=in | app=c:\windows\explorer.exe | "TCP Query User{7068B309-0926-4F51-9809-53A65608657E}C:\program files\tlen.pl\tlen.exe" = protocol=6 | dir=in | app=c:\program files\tlen.pl\tlen.exe | "TCP Query User{857BDA8A-C031-4363-B9BB-4A59E51AFAB4}C:\program files\nowe gadu-gadu\gg.exe" = protocol=6 | dir=in | app=c:\program files\nowe gadu-gadu\gg.exe | "TCP Query User{8C3F7AE3-66F9-41D2-83A0-ED0D8DB44872}C:\program files\dc++\dcplusplus.exe" = protocol=6 | dir=in | app=c:\program files\dc++\dcplusplus.exe | "TCP Query User{9E0B2653-A33A-4A3B-82CB-5748272F6352}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "TCP Query User{A582D4F9-B0E4-428B-A812-57EDFE4C9999}C:\gry\stronghold 2\stronghold2.exe" = protocol=6 | dir=in | app=c:\gry\stronghold 2\stronghold2.exe | "TCP Query User{D0A42AF5-0CAD-422D-B640-6F1203F81D10}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe | "TCP Query User{E6FF0622-12D0-44B3-8B9F-36A2899048B4}C:\pkdc++ v1.00c\pkdc++.exe" = protocol=6 | dir=in | app=c:\pkdc++ v1.00c\pkdc++.exe | "TCP Query User{E9F45A2B-D0D3-4EA0-AB30-65199849BE44}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "UDP Query User{006B3523-7386-437E-BA7F-0E84098A86C8}C:\windows\explorer.exe" = protocol=17 | dir=in | app=c:\windows\explorer.exe | "UDP Query User{01541FA6-2170-4B93-9707-1F71754C66E9}C:\pkdc++ v1.00c\pkdc++.exe" = protocol=17 | dir=in | app=c:\pkdc++ v1.00c\pkdc++.exe | "UDP Query User{0EBF0DFF-920C-4772-A517-FF3C2845A76E}C:\program files\dc++\dcplusplus.exe" = protocol=17 | dir=in | app=c:\program files\dc++\dcplusplus.exe | "UDP Query User{16E32B59-B200-4698-A74D-4CF746741D85}C:\program files\tlen.pl\tlen.exe" = protocol=17 | dir=in | app=c:\program files\tlen.pl\tlen.exe | "UDP Query User{1BB42646-E506-4A5A-9E02-C2DA113558C4}C:\gry\stronghold 2\stronghold2.exe" = protocol=17 | dir=in | app=c:\gry\stronghold 2\stronghold2.exe | "UDP Query User{3A5FBE91-B3D4-4B9C-8C17-028AD16030CC}C:\program files\gadu-gadu\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu\gg.exe | "UDP Query User{5E46E3B9-FD1A-48D6-B34B-08014874B44A}D:\gry\pro evolution soccer 6\pes6.exe" = protocol=17 | dir=in | app=d:\gry\pro evolution soccer 6\pes6.exe | "UDP Query User{621DC4CC-23AB-4823-AE1A-495A06A71523}C:\program files\bearshare\bearshare.exe" = protocol=17 | dir=in | app=c:\program files\bearshare\bearshare.exe | "UDP Query User{6C2C6B9E-A0A2-48C4-9BE2-1648B7B3EB12}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe | "UDP Query User{6CE04727-2BB6-40CF-B52F-7A9494CBC533}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "UDP Query User{D3B8F969-B508-496C-AE0D-9F13D41C885D}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe | "UDP Query User{F8A4A781-0655-4F8D-869D-21A3E87294EE}C:\program files\nowe gadu-gadu\gg.exe" = protocol=17 | dir=in | app=c:\program files\nowe gadu-gadu\gg.exe | "UDP Query User{FF7A2E16-304B-456D-AB23-E42E0BB0DCE9}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ==========[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer"{11BB336F-0E58-4977-B866-F24FA334616B}" = HP Active Support Library"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works"{1BDC9633-895B-4842-BCB6-8FA1EC2A3C5A}" = Adobe Shockwave Player"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite"{209CDA54-D390-46A2-A97C-7BF61734418D}" = WeatherBug Gadget"{228C6B46-64E2-404E-898A-EF0830603EF4}" = HPNetworkAssistant"{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0"{254C37AA-6B72-4300-84F6-98A82419187E}" = Hewlett-Packard Active Check"{3248F0A8-6813-11D6-A77B-00B0D0160020}" = Java 6 Update 2"{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 3.6"{4D49757C-367A-4333-BDB3-68966162B14E}" = HP User Guides 0087"{5545EEE1-FA36-4F76-B6BE-5696E7F4E2D6}" = VBA (2627.01)"{5783F2D7-6001-0415-0002-0060B0CE6BBA}" = AutoCAD 2008 - Polski"{669D4A35-146B-4314-89F1-1AC3D7B88367}" = Hewlett-Packard Asset Agent for Health Check"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007"{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007"{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007"{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007"{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007"{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007"{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{2AB528A5-BB1B-4EBE-8E51-AD0C4CD33CA9}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007"{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{2D1F88C2-ADAE-47C4-8648-6EA8F7E6EB2D}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007"{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007"{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{94A4609B-0414-4427-81F3-0FD282A2D0D3}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007"{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007"{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{72776234-19F1-4688-9312-85FAF07143F4}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)"{9A346205-EA92-4406-B1AB-50379DA3F057}" = Autodesk DWF Viewer 7"{A563C4F4-BE36-4956-BA0B-E02BDD9F70D5}" = Dungeon Siege 2 Broken World"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2"{BB65C393-C76E-4F06-9B0C-2124AA8AF97B}" = Adobe Flash Player 9 ActiveX"{CBAE4F50-9FC9-4557-AB36-9826DF3C103C}" = HP Wireless Assistant"{CC4A73BF-938E-4C19-A553-853C035C9BA1}" = LightScribe System Software  1.10.13.1"{D063F201-FAC4-4D5C-B10B-615058ADE5A7}" = HP Update"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin"Audacity_is1" = Audacity 1.2.6"AutoCAD 2008 - Polski" = AutoCAD 2008 - Polski"avast!" = avast! Antivirus"Brydz3000" = Brydż 3000"CCleaner" = CCleaner (remove only)"CNXT_AUDIO_HDA" = Conexant HD Audio"CNXT_MODEM_HDA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP"Diablo II" = Diablo II"DriverAgent.exe" = DriverAgent by TouchStone Software"DungeonSiege2" = Dungeon Siege 2"ENTERPRISE" = Microsoft Office Enterprise 2007"Gadu-Gadu" = Gadu-Gadu 7.7"Hauppauge MCE2005 Software Encoder" = Hauppauge MCE XP/Vista Software Encoder (2.0.25149)"HijackThis" = HijackThis 2.0.2"HOMESTUDENTR" = Microsoft Office Home and Student 2007"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 4.5.3"MoorHunt_is1" = MoorHunt 0.5.9.0"Mozilla Firefox (3.5)" = Mozilla Firefox (3.5)"NVIDIA Drivers" = NVIDIA Drivers"PKDC++ v1.00c" = PKDC++ v1.00c"QuickTime" = QuickTime"SkanerOnline" = Skaner on-line mks_vir"SlingMedia.QPSlingPlayer_is1" = QuickPlay SlingPlayer 0.4.6"SopCast" = SopCast 3.0.3"SubEdit - Vista WMP Patch_is1" = SubEdit - Vista WMP Patch"SubEdit-Player_is1" = SubEdit-Player"SynTPDeinstKey" = Synaptics Pointing Device Driver"TC UP" = Total Commander Ultima Prime 3.7.0.0"ViewpointMediaPlayer" = Viewpoint Media Player"Winamp" = Winamp"WinRAR archiver" = Archiwizator WinRAR========== Last 10 Event Log Errors ==========[ Application Events ]Error - 2009-07-11 21:20:49 | Computer Name = greg-PC | Source = Winlogon | ID = 4005Description = The Windows logon process has unexpectedly terminated.Error - 2009-07-12 00:56:05 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-12 06:08:08 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-12 09:34:10 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-12 09:47:25 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-12 16:01:52 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-12 16:57:03 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-15 17:40:28 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-16 04:18:44 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = Error - 2009-07-18 12:02:07 | Computer Name = greg-PC | Source = WinMgmt | ID = 10Description = [ OSession Events ]Error - 2009-04-22 09:16:41 | Computer Name = greg-PC | Source = Microsoft Office 12 Sessions | ID = 7001Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6331.5000, Microsoft Office Version: 12.0.4518.1014. This session lasted 14 seconds with 0 seconds of active time.  This session ended with a crash.< End of report >
Gość
komentarz
komentarz

Uruchom OTL i w oknie Custom Scans/Fixes wklej następujący skrypt:

:OTLPRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)O32 - AutoRun File - File not found -  -- [ NTFS ]O32 - AutoRun File - File not found -  -- [ NTFS ]O33 - MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\Shell - "" = AutoRunO33 - MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\Shell\AutoRun\command - "" = I:\LaunchU3.exe -- File not foundO33 - MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\Shell\explore\command - "" = H:\name\\\\\\less.exe -- File not foundO33 - MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\Shell\open\command - "" = H:\name\\\\\\less.exe -- File not foundO33 - MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\Shell - "" = AutoRunO33 - MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\Shell\AutoRun\command - "" = G:\start95.exe -- File not foundO33 - MountPoints2\G\Shell - "" = AutoRunO33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\setup.exe -- File not foundO33 - MountPoints2\G\Shell\directx\command - "" = G:\DirectX\dxsetup.exe -- File not foundO33 - MountPoints2\G\Shell\setup\command - "" = G:\setup.exe -- File not foundO2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No CLSID value found.O3 - HKLM\..\Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.O4 - HKLM..\Run: [HP Health Check Scheduler]  File not found:FilesC:\Windows\System32\fltrkl11.dll:Commands[emptytemp][start explorer][Reboot]

Klikasz w Run Fix i zatwierdzasz restart komputera.

Po restarcie - pokazujesz log z czyszczenia.

.

gregus88
komentarz
komentarz

W czasie czyszczenia pojawil sie nastepujacy blad "C:\Windows\System32\fltrkl11.dl is either not design to run on windows or contain an error..."

Oto logi

All processes killed========== OTL ==========No active process named explorer.exe was found!File File not found -  -- not found.File File not found -  -- not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\ not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{82c98a3b-456c-11de-9e0b-001e68a0ec06}\ not found.File I:\LaunchU3.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4c34be1-6baa-11de-8928-001e68a0ec06}\ not found.File H:\name\\\\\\less.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a4c34be1-6baa-11de-8928-001e68a0ec06}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{a4c34be1-6baa-11de-8928-001e68a0ec06}\ not found.File H:\name\\\\\\less.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\ not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\ not found.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ce6992d2-7c17-11dd-aa94-001e68a0ec06}\ not found.File G:\start95.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ deleted successfully.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ not found.File G:\setup.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ not found.File G:\DirectX\dxsetup.exe not found.Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G\ not found.File G:\setup.exe not found.Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}\ deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}\ not found.Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\HP Health Check Scheduler deleted successfully.========== FILES ==========LoadLibrary failed for C:\Windows\System32\fltrkl11.dllC:\Windows\System32\fltrkl11.dll NOT unregistered.C:\Windows\System32\fltrkl11.dll moved successfully.========== COMMANDS ==========[EMPTYTEMP]User: All UsersUser: Default->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 33170 bytesUser: Default User->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 0 bytesUser: greg->Temp folder emptied: 460001489 bytes->Temporary Internet Files folder emptied: 32902 bytes->Java cache emptied: 17540408 bytes->FireFox cache emptied: 74481742 bytesUser: Guest->Temp folder emptied: 532628 bytes->Temporary Internet Files folder emptied: 30153715 bytes->Java cache emptied: 66015 bytes->FireFox cache emptied: 3391956 bytesUser: Public%systemdrive% .tmp files removed: 0 bytes%systemroot% .tmp files removed: 0 bytes%systemroot%\System32 .tmp files removed: 0 bytesWindows Temp folder emptied: 1248 bytesRecycleBin emptied: 0 bytesTotal Files Cleaned = 559,08 mbOTL by OldTimer - Version 3.0.9.2 log created on 07202009_125000Files\Folders moved on Reboot...Registry entries deleted on Reboot...
gregus88
komentarz
komentarz

DDS.txt

DDS (Ver_09-06-26.01) - NTFSx86  Run by greg at 14:15:07,59 on 2009-07-20Internet Explorer: 7.0.6001.18000Microsoft® Windows Vista™ Home Premium   6.0.6001.1.1250.48.1033.18.3006.1891 [GMT 2:00]AV: Kaspersky Internet Security *On-access scanning enabled* (Updated)   {2C4D4BC6-0793-4956-A9F9-E252435469C0}SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}SP: Kaspersky Internet Security *enabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}FW: Kaspersky Internet Security *enabled*   {2C4D4BC6-0793-4956-A9F9-E252435469C0}============== Running Processes ===============C:\Windows\system32\wininit.exeC:\Windows\system32\lsm.exeC:\Windows\system32\svchost.exe -k DcomLaunchC:\Windows\system32\nvvsvc.exeC:\Windows\system32\svchost.exe -k rpcssC:\Windows\System32\svchost.exe -k secsvcsC:\Windows\System32\svchost.exe -k LocalServiceNetworkRestrictedC:\Windows\System32\svchost.exe -k LocalSystemNetworkRestrictedC:\Windows\system32\svchost.exe -k netsvcsC:\Windows\system32\SLsvc.exeC:\Windows\system32\svchost.exe -k LocalServiceC:\Windows\System32\spoolsv.exeC:\Windows\system32\svchost.exe -k LocalServiceNoNetworkC:\Windows\system32\svchost.exe -k NetworkServiceC:\Program Files\Common Files\LightScribe\LSSrvc.exeC:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestrictedC:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exeC:\Program Files\Common Files\RbtProt\sgsrv.exeC:\Windows\system32\svchost.exe -k imgsvcC:\Windows\System32\svchost.exe -k WerSvcGroupC:\Windows\system32\SearchIndexer.exeC:\Windows\system32\DRIVERS\xaudio.exeC:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\rundll32.exeC:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exeC:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\Program Files\Windows Defender\MSASCui.exeC:\Program Files\HP\HP Software Update\hpwuSchd2.exeC:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exeC:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exeC:\Program Files\Java\jre1.6.0_02\bin\jusched.exeC:\Windows\system32\wbem\wmiprvse.exeC:\WINDOWS\System32\rundll32.exeC:\Program Files\HP\QuickPlay\QPService.exeC:\Program Files\Microsoft Office\Office12\GrooveMonitor.exeC:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exeC:\WINDOWS\ehome\ehtray.exeC:\Windows\ehome\ehmsas.exec:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exeC:\Program Files\Hewlett-Packard\Shared\HpqToaster.exeC:\Program Files\Synaptics\SynTP\SynTPHelper.exeC:\Windows\system32\wuauclt.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\My Downloads\dds.pifC:\Windows\system32\conime.exeC:\Windows\system32\wbem\wmiprvse.exe============== Pseudo HJT Report ===============uStart Page = hxxp://amkbpk.110mb.com/uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopuWindow Title = Ahsan Manan Khan Bhutta * Internet Explorer *mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopmDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_pl&c=81&bd=Pavilion&pf=laptopBHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dllBHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2009\ievkbd.dllBHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dllBHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_02\bin\ssv.dlluRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRunuRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hiddenuRun: [Gadu-Gadu] "c:\program files\gadu-gadu\gg.exe" /trayuRun: [ehTray.exe] c:\windows\ehome\ehTray.exemRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exemRun: [uCam_Menu] "c:\program files\cyberlink\youcam\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\youcam" update "software\cyberlink\youcam\1.0"mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hidemRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exemRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exemRun: [WAWifiMessage] c:\program files\hewlett-packard\hp wireless assistant\WiFiMsg.exemRun: [sunJavaUpdateSched] "c:\program files\java\jre1.6.0_02\bin\jusched.exe"mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartupmRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInitmRun: [QPService] "c:\program files\hp\quickplay\QPService.exe"mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"mRun: [LanzarP2006] "c:\users\greg\appdata\local\temp\p2006tmp\Install.exe" /SETUP:"/l0x0009"mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2009\avp.exe"mPolicies-system: EnableUIADesktopToggle = 0 (0x0)IE: Dodaj do listy blokowanych banerów - c:\program files\kaspersky lab\kaspersky internet security 2009\ie_banner_deny.htmIE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_02\bin\ssv.dllIE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky internet security 2009\SCIEPlgn.dllIE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dllIE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLLHandler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dllNotify: klogon - c:\windows\system32\klogon.dllAppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd.dll,c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll,c:\progra~1\kasper~1\kasper~1\adialhk.dll,c:\progra~1\kasper~1\kasper~1\kloehk.dllSEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll================= FIREFOX ===================FF - ProfilePath - c:\users\greg\appdata\roaming\mozilla\firefox\profiles\71tijwnc.default\FF - prefs.js: browser.startup.homepage - www.onet.plFF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dllFF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dllFF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll---- FIREFOX POLICIES ----c:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200);c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true);c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true);c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true);c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota",	  5120);c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1);c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true);c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history",	 true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata",	true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords",   false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads",   true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies",	 true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache",	   true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions",	true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history",				 true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata",				true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords",			   false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads",			   true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies",				 true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache",				   true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions",				true);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps",			 false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings",			false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs",	false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");============= SERVICES / DRIVERS ===============R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-29 33808]R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2008-7-9 20496]R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [2009-7-20 41144]R1 VD_FileDisk;VD_FileDisk;c:\windows\system32\drivers\vd_filedisk.sys [2006-1-13 15872]R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263};c:\program files\hp\quickplay\000.fcl [2009-2-18 41456]R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [2009-7-20 177416]R2 SG_Service;SoftGuard Service;c:\program files\common files\rbtprot\sgsrv.exe [2004-9-21 155648]R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [2008-3-13 26640]=============== Created Last 30 ================2009-07-20 13:35	105,395	a-------	c:\windows\system32\drivers\klin.dat2009-07-20 13:35	94,643	a-------	c:\windows\system32\drivers\klick.dat2009-07-20 13:33	1,329,696	a--sh---	c:\windows\system32\drivers\fidbox.dat2009-07-20 13:33	327,712	a--sh---	c:\windows\system32\drivers\fidbox2.dat2009-07-20 13:33	12,124	a--sh---	c:\windows\system32\drivers\fidbox.idx2009-07-20 13:33	2,116	a--sh---	c:\windows\system32\drivers\fidbox2.idx2009-07-20 13:33	<DIR>	--d-----	c:\programdata\Kaspersky Lab2009-07-20 13:33	<DIR>	--d-----	c:\program files\Kaspersky Lab2009-07-20 13:33	<DIR>	--d-----	c:\progra~2\Kaspersky Lab2009-07-20 13:31	<DIR>	--d-----	c:\programdata\Kaspersky Lab Setup Files2009-07-20 13:31	<DIR>	--d-----	c:\progra~2\Kaspersky Lab Setup Files2009-07-20 12:50	<DIR>	--d-----	C:\_OTL2009-07-20 02:19	177,416	a-------	c:\windows\system32\drivers\PavProc.sys2009-07-20 02:19	41,144	a-------	c:\windows\system32\drivers\ShlDrv51.sys2009-07-20 02:07	227	a-------	c:\windows\AvDetected.ini2009-07-20 02:06	<DIR>	--d-----	c:\program files\common files\Panda Security2009-07-18 18:08	289,792	a-------	c:\windows\system32\atmfd.dll2009-07-18 18:08	156,672	a-------	c:\windows\system32\t2embed.dll2009-07-18 18:08	72,704	a-------	c:\windows\system32\fontsub.dll2009-07-18 18:08	10,240	a-------	c:\windows\system32\dciman32.dll2009-07-16 00:08	<DIR>	--d-----	c:\program files\Trend Micro2009-07-12 19:58	<DIR>	--d-----	C:\piosenki kowal2009-07-12 15:23	<DIR>	--d-----	c:\windows\BricoPacks2009-07-12 15:06	<DIR>	--d-----	c:\programdata\Spybot - Search & Destroy2009-07-12 15:06	<DIR>	--d-----	c:\program files\Spybot - Search & Destroy2009-07-12 15:06	<DIR>	--d-----	c:\progra~2\Spybot - Search & Destroy2009-07-12 15:05	<DIR>	--d-----	c:\program files\CCleaner2009-07-11 21:36	<DIR>	--d-----	C:\pisoenki pendrive2009-07-11 11:04	<DIR>	--d-----	c:\users\greg\appdata\roaming\Malwarebytes2009-07-11 11:04	<DIR>	--d-----	c:\programdata\Malwarebytes2009-07-11 11:04	<DIR>	--d-----	c:\progra~2\Malwarebytes2009-07-11 11:04	<DIR>	--d-----	c:\program files\Malwarebytes' Anti-Malware2009-07-11 02:15	<DIR>	--d-----	c:\program files\ESET2009-07-11 02:15	<DIR>	--d-----	c:\programdata\ESET2009-07-10 23:54	<DIR>	--d-----	c:\program files\Odkurzacz2009-07-10 01:51	<DIR>	--d-----	c:\program files\KeyLemon==================== Find3M  ====================2009-07-20 13:56	33,808	a-------	c:\windows\system32\drivers\klbg.sys2009-07-20 13:34	86,016	a-------	c:\windows\inf\infstrng.dat2009-07-20 13:34	86,016	a-------	c:\windows\inf\infstor.dat2009-07-20 13:34	51,200	a-------	c:\windows\inf\infpub.dat2009-07-20 02:22	41,952	a-------	c:\programdata\nvModes.dat2009-07-20 02:22	41,952	a-------	c:\progra~2\nvModes.dat2009-04-30 14:37	293,376	a-------	c:\windows\system32\psisdecd.dll2009-04-30 14:37	428,544	a-------	c:\windows\system32\EncDec.dll2009-04-24 18:05	827,904	a-------	c:\windows\system32\wininet.dll2009-04-24 18:02	78,336	a-------	c:\windows\system32\ieencode.dll2009-04-24 15:44	26,624	a-------	c:\windows\system32\ieUnatt.exe2009-04-23 14:43	784,896	a-------	c:\windows\system32\rpcrt4.dll2009-04-23 14:42	636,928	a-------	c:\windows\system32\localspl.dll2009-01-29 14:59	1,006	a-------	c:\users\greg\appdata\roaming\wklnhst.dat2008-09-09 20:38	27,240	a-------	c:\users\greg\appdata\roaming\nvModes.dat2008-09-09 20:01	262,144	a-------	c:\progra~2\ntuser.dat2008-09-06 15:28	665,600	a-------	c:\windows\inf\drvindex.dat2008-01-21 04:43	174	a--sh---	c:\program files\desktop.ini2006-11-02 14:42	287,440	a-------	c:\windows\inf\perflib\0409\perfi.dat2006-11-02 14:42	287,440	a-------	c:\windows\inf\perflib\0409\perfh.dat2006-11-02 14:42	30,674	a-------	c:\windows\inf\perflib\0409\perfd.dat2006-11-02 14:42	30,674	a-------	c:\windows\inf\perflib\0409\perfc.dat2006-11-02 11:20	287,440	a-------	c:\windows\inf\perflib\0000\perfi.dat2006-11-02 11:20	287,440	a-------	c:\windows\inf\perflib\0000\perfh.dat2006-11-02 11:20	30,674	a-------	c:\windows\inf\perflib\0000\perfd.dat2006-11-02 11:20	30,674	a-------	c:\windows\inf\perflib\0000\perfc.dat============= FINISH: 14:17:06,08 ===============

Attach.txt

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.IF REQUESTED, ZIP IT UP & ATTACH ITDDS (Ver_09-06-26.01)Microsoft® Windows Vista™ Home Premium Boot Device: \Device\HarddiskVolume1Install Date: 2008-07-16 04:29:19System Uptime: 2009-07-20 13:43:57 (1 hours ago)Motherboard: Quanta |  | 30CFProcessor: AMD Turion 64 X2 Mobile Technology TL-60 | Socket S1 | 800/200mhz==== Disk Partitions =========================C: is FIXED (NTFS) - 175 GiB total, 54,815 GiB free.D: is FIXED (NTFS) - 12 GiB total, 1,987 GiB free.E: is CDROM ()F: is CDROM ()G: is CDROM ()==== Disabled Device Manager Items ================= System Restore Points ======================= Installed Programs ======================2007 Microsoft Office Suite Service Pack 1 (SP1)Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)Adobe Flash Player 10 PluginAdobe Flash Player 9 ActiveXAdobe Flash Player ActiveXAdobe Reader 8.1.2Adobe Reader 8.1.2 Security Update 1 (KB403742)Adobe Shockwave PlayerAktualizacja produktu Microsoft Office Excel 2007 Help (KB963678)Aktualizacja produktu Microsoft Office Powerpoint 2007 Help (KB963669)Aktualizacja produktu Microsoft Office Word 2007 Help (KB963665)Archiwizator WinRARAudacity 1.2.6AutoCAD 2008 - PolskiAutodesk DWF Viewer 7Brydż 3000CCleaner (remove only)Compatibility Pack for the 2007 Office systemConexant HD AudioCyberLink YouCamDiablo IIDriverAgent by TouchStone SoftwareDungeon Siege 2Dungeon Siege 2 Broken WorldDVD SuiteGadu-Gadu 7.7Hauppauge MCE XP/Vista Software Encoder (2.0.25149)HDAUDIO Soft Data Fax Modem with SmartCPHewlett-Packard Active CheckHewlett-Packard Asset Agent for Health CheckHijackThis 2.0.2HP Active Support LibraryHP Doc ViewerHP QuickPlay 3.6HP UpdateHP User Guides 0087HP Wireless AssistantHPNetworkAssistantJava 6 Update 2K-Lite Mega Codec Pack 4.5.3Kaspersky Internet Security 2009LightScribe System Software  1.10.13.1Microsoft Office Access MUI (Polish) 2007Microsoft Office Enterprise 2007Microsoft Office Excel MUI (English) 2007Microsoft Office Excel MUI (Polish) 2007Microsoft Office Groove MUI (Polish) 2007Microsoft Office Home and Student 2007Microsoft Office InfoPath MUI (Polish) 2007Microsoft Office OneNote MUI (English) 2007Microsoft Office OneNote MUI (Polish) 2007Microsoft Office Outlook MUI (Polish) 2007Microsoft Office PowerPoint MUI (English) 2007Microsoft Office PowerPoint MUI (Polish) 2007Microsoft Office PowerPoint Viewer 2007 (English)Microsoft Office Proof (English) 2007Microsoft Office Proof (French) 2007Microsoft Office Proof (German) 2007Microsoft Office Proof (Polish) 2007Microsoft Office Proof (Spanish) 2007Microsoft Office Proofing (English) 2007Microsoft Office Proofing (Polish) 2007Microsoft Office Publisher MUI (Polish) 2007Microsoft Office Shared MUI (English) 2007Microsoft Office Shared MUI (Polish) 2007Microsoft Office Shared Setup Metadata MUI (English) 2007Microsoft Office Word MUI (English) 2007Microsoft Office Word MUI (Polish) 2007Microsoft Visual C++ 2005 RedistributableMicrosoft Visual C++ 2008 Redistributable - x86 9.0.21022Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729Microsoft WorksMoorHunt 0.5.9.0Mozilla Firefox (3.5)MSXML 4.0 SP2 (KB936181)MSXML 4.0 SP2 (KB941833)MSXML 4.0 SP2 (KB954430)NVIDIA DriversPKDC++ v1.00cQuickPlay SlingPlayer 0.4.6QuickTimeSecurity Update for 2007 Microsoft Office System (KB951550)Security Update for 2007 Microsoft Office System (KB951944)Security Update for 2007 Microsoft Office System (KB969559)Security Update for 2007 Microsoft Office System (KB969679)Security Update for Microsoft Office Excel 2007 (KB969682)Security Update for Microsoft Office OneNote 2007 (KB950130)Security Update for Microsoft Office PowerPoint 2007 (KB957789)Security Update for Microsoft Office Publisher 2007 (KB969693)Security Update for Microsoft Office system 2007 (KB954326)Security Update for Microsoft Office system 2007 (KB969613)Security Update for Microsoft Office Word 2007 (KB969604)Skaner on-line mks_virSkype™ 4.0SopCast 3.0.3SubEdit-PlayerSubEdit - Vista WMP PatchSynaptics Pointing Device DriverTotal Commander Ultima Prime 3.7.0.0Update for 2007 Microsoft Office System (KB967642)Update for Microsoft Office 2007 Help for Common Features (KB963673)Update for Microsoft Office Excel 2007 Help (KB963678)Update for Microsoft Office OneNote 2007 Help (KB963670)Update for Microsoft Office Outlook 2007 (KB969907)Update for Microsoft Office Powerpoint 2007 Help (KB963669)Update for Microsoft Office Script Editor Help (KB963671)Update for Microsoft Office Word 2007 Help (KB963665)Update for Outlook 2007 Junk Email Filter (kb971933)VBA (2627.01)Viewpoint Media PlayerWeatherBug GadgetWinampWindows Media Player Firefox Plugin==== End Of File ===========================
Gość
komentarz
komentarz

W logach nic nie ma.

1. Odpal OTL i wywołaj go z opcji CleanUp, zgódź się na czyszczenie + restart komputera.

2. Użyj programu Malwarebytes.

Wciskamy Skanuj, wybieramy dyski do skanowania i Rozpoczynamy skanowanie, na końcu wciskamy Usuń zaznaczone jak będą i Ok.

Wrzuć wygenerowany raport po usuwaniu MBAMem.

.

gregus88
komentarz
komentarz
Malwarebytes' Anti-Malware 1.39Wersja bazy definicji: 2466Windows 6.0.6001 Service Pack 12009-07-20 16:39:32mbam-log-2009-07-20 (16-39-32).txtTyp skanowania: Pełne skanowanie (C:\|D:\|)Przeskanowane obiekty: 247582Upłynęło: 1 hour(s), 14 minute(s), 8 second(s)Zainfekowane procesy w pamięci: 0Zainfekowane moduły pamięci: 0Zainfekowane klucze rejestru: 3Zainfekowane wartości rejestru: 0Zainfekowane pliki rejestru: 2Zainfekowane foldery: 0Zainfekowane pliki: 0Zainfekowane procesy w pamięci:(Nie wykryto groźnych plików)Zainfekowane moduły pamięci:(Nie wykryto groźnych plików)Zainfekowane klucze rejestru:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{37b85a21-692b-4205-9cad-2626e4993404} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{37b85a29-692b-4205-9cad-2626e4993404} (Adware.MyWebSearch) -> Quarantined and deleted successfully.HKEY_LOCAL_MACHINE\SOFTWARE\MyGlobalSearch (Adware.BookedSpace) -> Quarantined and deleted successfully.Zainfekowane wartości rejestru:(Nie wykryto groźnych plików)Zainfekowane pliki rejestru:HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Window Title (Hijacked.WindowTitle) -> Bad: (Ahsan Manan Khan Bhutta * Internet Explorer *) Good: (Internet Explorer) -> Quarantined and deleted successfully.HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Main\Start Page (Hijack.Homepage) -> Bad: (http://amkbpk.110mb.com/) Good: (http://www.Google.com/) -> Quarantined and deleted successfully.Zainfekowane foldery:(Nie wykryto groźnych plików)Zainfekowane pliki:(Nie wykryto groźnych plików)
MarekM25
komentarz
komentarz

Mbam usunął to co znalazł, więc jest dobrze;)

gregus88
komentarz
komentarz

po tych wszystkich zabiegach komputer rzeczywiscie pracuje troche szybciej,

dziekuje:)

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.